Lucene search

MitreCVE-2022-26239

HistoryOct 06, 2022 - 6:15 p.m.

CVE-2022-26239

2022-10-0618:15:56

CWE-732

mitre

web.nvd.nist.gov

beckman coulter

remisol advance

cve-2022-26239

security

data access

privileges

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

The default privileges for the running service Normand License Manager in Beckman Coulter Remisol Advance v2.0.12.1 and prior allows unprivileged users to overwrite and manipulate executables and libraries. This allows attackers to access sensitive data.

Affected configurations

Nvd

Node

beckmancoulterremisol_advanceRange≤2.0.12.1

AND

microsoftwindowsMatch-

VendorProductVersionCPE
beckmancoulterremisol_advance*cpe:2.3:a:beckmancoulter:remisol_advance:*:*:*:*:*:*:*:*
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
beckmancoulter	remisol_advance	*	cpe:2.3:a:beckmancoulter:remisol_advance::::::::
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*

References

pastebin.com/1QEHrj01

www.beckmancoulter.com/products/clinical-information-management-tools/remisol-advance

Social References

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Related for CVE-2022-26239